CVE-2026-43355

Summary

In the Linux kernel, the following vulnerability has been resolved:

iio: light: bh1780: fix PM runtime leak on error path

Move pm_runtime_put_autosuspend() before the error check to ensure the PM runtime reference count is always decremented after pm_runtime_get_sync(), regardless of whether the read operation succeeds or fails.

Affected Software

VendorProductVersion RangeStatus
LinuxLinux1f0477f18306c018a954e4f333690a9d0f7efc76 < 1eb3af4f59e09323788860a9155e9766b12891e5affected
LinuxLinux1f0477f18306c018a954e4f333690a9d0f7efc76 < 4228f7f053b452be625919ccbb605912bae0dc98affected
LinuxLinux1f0477f18306c018a954e4f333690a9d0f7efc76 < 424bf90e87134effe4bd932608a15286493b11abaffected
LinuxLinux1f0477f18306c018a954e4f333690a9d0f7efc76 < fc77e0a5600e620a2ae51ec78933162fb217b20baffected
LinuxLinux1f0477f18306c018a954e4f333690a9d0f7efc76 < ad58fa1cb11e4ceb702786a494352c7ff2eca1edaffected
LinuxLinux1f0477f18306c018a954e4f333690a9d0f7efc76 < aae572ddc28578af476cce7da3faec0395ef0bf0affected
LinuxLinux1f0477f18306c018a954e4f333690a9d0f7efc76 < 33661bfc85c14836bfef4425a74b0ca2df4bb5adaffected
LinuxLinux1f0477f18306c018a954e4f333690a9d0f7efc76 < dd72e6c3cdea05cad24e99710939086f7a113fb5affected
LinuxLinux4.7affected
LinuxLinux0 < 4.7unaffected
LinuxLinux5.10.253 <= 5.10.*unaffected
LinuxLinux5.15.211 <= 5.15.*unaffected
LinuxLinux6.1.167 <= 6.1.*unaffected
LinuxLinux6.6.130 <= 6.6.*unaffected
LinuxLinux6.12.95 <= 6.12.*unaffected
LinuxLinux6.18.19 <= 6.18.*unaffected
LinuxLinux6.19.9 <= 6.19.*unaffected
LinuxLinux7.0 <= *unaffected

Weaknesses

References